Vanguard
Overview
Join to apply for the
Application Security Manager
role at
Vanguard . This Hybrid Role (in-office Tue-Wed-Thu) can be based in Charlotte, NC, Dallas, TX, or Malvern, PA (HQ). Base pay range $100.00/yr - $200,000.00/yr Responsibilities
The Application Security team is responsible for the solutions and processes to secure Vanguard applications in SDLC. As an Application Security Manager, you will play a pivotal role in defining the strategy and ensuring the security and compliance of the Vanguard software development lifecycle (SDLC). Lead strategic initiatives to enhance application security and developer experience with security tooling and practices across the enterprise. Collaborate with cybersecurity experts, development teams, and business leaders to integrate security into the software development lifecycle (SSDLC), reduce developer friction, and drive measurable improvements in secure coding practices. Define governance procedures and provide strategic recommendations on security policies for secure application and ML model development. Partner with platform and product teams to triage and remediate threats and vulnerabilities across web, mobile, backend, and ML systems. Create and maintain documentation for integrated security processes, controls, and incident response playbooks. Develop and maintain a technical roadmap for security tooling and controls to stay ahead of evolving threats. Translate technical security strategies into business-aligned objectives for product and executive leadership. Establish a governance framework to benchmark program maturity and team performance. Stay current on emerging threats, including adversarial ML risks, and lead knowledge-sharing sessions across the organization. Qualifications
Bachelor’s degree in Computer Science, Engineering, or related field 7+ years of professional experience in Security Management, Application Security, or ML Security Proven leadership experience in IT Security and governance Hands-on experience with SAST, DAST, SCA tools Familiarity with secure ML lifecycle practices (MLSecOps) Desired Skills
Strong understanding of secure SDLC, application security testing, and supply chain security Experience with MLSecOps practices and securing AI/ML pipelines Familiarity with industry frameworks: OWASP SAMM, BSIMM, SLSA, NIST SSDF Experience with cloud platforms (AWS, Azure, GCP) and cloud-native security practices Ability to work independently and define strategic direction without supervision Excellent communication, leadership, and stakeholder management skills Certifications such as CISSP, CISM, CSSLP, or equivalent are preferred Experience with programming languages such as Python, Java, C#, C++, etc Seniority level
Mid-Senior level Employment type
Full-time Job function
Information Technology Industries
Investment Management Referrals increase your chances of interviewing at Vanguard.
#J-18808-Ljbffr
Join to apply for the
Application Security Manager
role at
Vanguard . This Hybrid Role (in-office Tue-Wed-Thu) can be based in Charlotte, NC, Dallas, TX, or Malvern, PA (HQ). Base pay range $100.00/yr - $200,000.00/yr Responsibilities
The Application Security team is responsible for the solutions and processes to secure Vanguard applications in SDLC. As an Application Security Manager, you will play a pivotal role in defining the strategy and ensuring the security and compliance of the Vanguard software development lifecycle (SDLC). Lead strategic initiatives to enhance application security and developer experience with security tooling and practices across the enterprise. Collaborate with cybersecurity experts, development teams, and business leaders to integrate security into the software development lifecycle (SSDLC), reduce developer friction, and drive measurable improvements in secure coding practices. Define governance procedures and provide strategic recommendations on security policies for secure application and ML model development. Partner with platform and product teams to triage and remediate threats and vulnerabilities across web, mobile, backend, and ML systems. Create and maintain documentation for integrated security processes, controls, and incident response playbooks. Develop and maintain a technical roadmap for security tooling and controls to stay ahead of evolving threats. Translate technical security strategies into business-aligned objectives for product and executive leadership. Establish a governance framework to benchmark program maturity and team performance. Stay current on emerging threats, including adversarial ML risks, and lead knowledge-sharing sessions across the organization. Qualifications
Bachelor’s degree in Computer Science, Engineering, or related field 7+ years of professional experience in Security Management, Application Security, or ML Security Proven leadership experience in IT Security and governance Hands-on experience with SAST, DAST, SCA tools Familiarity with secure ML lifecycle practices (MLSecOps) Desired Skills
Strong understanding of secure SDLC, application security testing, and supply chain security Experience with MLSecOps practices and securing AI/ML pipelines Familiarity with industry frameworks: OWASP SAMM, BSIMM, SLSA, NIST SSDF Experience with cloud platforms (AWS, Azure, GCP) and cloud-native security practices Ability to work independently and define strategic direction without supervision Excellent communication, leadership, and stakeholder management skills Certifications such as CISSP, CISM, CSSLP, or equivalent are preferred Experience with programming languages such as Python, Java, C#, C++, etc Seniority level
Mid-Senior level Employment type
Full-time Job function
Information Technology Industries
Investment Management Referrals increase your chances of interviewing at Vanguard.
#J-18808-Ljbffr